JaffaCakes118_7a5a0ac254e92c52dd034502975e23aa340aa8d61e5ad03e6125a9e5ce0500fb

General

Target

JaffaCakes118_7a5a0ac254e92c52dd034502975e23aa340aa8d61e5ad03e6125a9e5ce0500fb
Size

773KB
MD5

c80dd12c2b398ec489a4545bc232f757
SHA1

609740a1778629a3373fd498685bd82a19432465
SHA256

7a5a0ac254e92c52dd034502975e23aa340aa8d61e5ad03e6125a9e5ce0500fb
SHA512

627d6f98ca4121c84a1458b657c16e8926cd7089212f5bece129fa2c50df6cdc732cc9f5640c023058fbec8b6b7456b384e4b68a992adf89f6a57c9e88e4799e
SSDEEP

12288:AFhEVGqL8Xn1xZREvQc2YZWVqeT3uggeDqRoti8Fh0+LNXfhdIIXX:ASGh3rZRYQc2YoVqeT+gdTi+9vhOoX

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/40619e22c2b83a5d635d00d27fd1f5f1b4f38dcb109db827e0947a72458e19d5

JaffaCakes118_7a5a0ac254e92c52dd034502975e23aa340aa8d61e5ad03e6125a9e5ce0500fb
.zip

Password: infected
40619e22c2b83a5d635d00d27fd1f5f1b4f38dcb109db827e0947a72458e19d5
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 867KB - Virtual size: 867KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.l2
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ